This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38332e3133362e3138312e302f32342d3234203d3e20323136313531.roa File: 38332e3133362e3138312e302f32342d3234203d3e20323136313531.roa (raw, json) Hash identifier: cdgwL/qzVDd8h2Xo9zkWLtLye0tXgLRVGyexfDNHsME= Subject key identifier: 97:B5:81:D9:A7:8F:6D:13:4A:14:CE:85:E1:B4:CE:1A:65:4E:2E:4A Certificate issuer: /CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Certificate serial: 068B64A3541BE902C1E47B766F1B1CEF8FEC13EF Authority key identifier: AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38332e3133362e3138312e302f32342d3234203d3e20323136313531.roa Signing time: Mon 29 Dec 2025 16:51:08 +0000 ROA not before: Mon 29 Dec 2025 16:46:08 +0000 ROA not after: Mon 28 Dec 2026 16:51:08 +0000 asID: 216151 IP address blocks: 83.136.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.mft rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 01:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:8b:64:a3:54:1b:e9:02:c1:e4:7b:76:6f:1b:1c:ef:8f:ec:13:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ab2dcc169c95f2b14df31dd24a1f67034ea7779c Validity Not Before: Dec 29 16:46:08 2025 GMT Not After : Dec 28 16:51:08 2026 GMT Subject: CN=97B581D9A78F6D134A14CE85E1B4CE1A654E2E4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:5a:bb:d9:34:6e:0b:37:09:9b:52:55:b0:0b: ad:63:e7:ef:92:7d:9c:bc:ad:f5:d6:b1:70:f7:48: 5c:f4:85:5b:64:17:1b:4a:48:03:43:84:6c:43:92: 98:b2:5b:cd:26:56:b7:82:1d:c5:39:1b:8d:f8:d5: b7:84:a4:7a:64:42:28:2a:a8:13:e4:fe:bb:7f:b3: 39:a0:08:03:61:4b:8e:fd:9c:a5:32:73:2d:00:24: 8f:5a:6b:97:1a:a6:98:1f:e5:9a:1f:95:34:5f:62: 0a:d8:b9:6e:38:9f:1f:71:4a:55:70:f3:63:4c:6b: e5:23:1b:94:12:98:4e:ae:60:ad:70:4b:79:a3:74: e2:29:59:1b:ae:6d:88:c6:ae:39:47:d7:d8:f3:f1: d4:9b:96:e5:5a:10:34:39:07:50:84:fb:c3:ce:d5: 11:3e:8f:35:8d:b0:a8:c7:08:43:b4:fc:3b:34:9d: ae:c5:07:35:34:85:6d:c3:fb:ec:ae:08:69:17:da: 66:95:cd:f8:91:fc:75:ff:26:06:f1:da:0f:08:4d: 62:f9:2d:9d:ca:4f:d8:a1:d0:c9:c8:b6:df:b9:57: 85:43:15:bd:16:95:3c:91:42:57:b8:97:b2:7b:93: b1:c4:a8:9b:96:23:76:c0:3f:1e:ce:9b:6a:2e:a8: 26:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:B5:81:D9:A7:8F:6D:13:4A:14:CE:85:E1:B4:CE:1A:65:4E:2E:4A X509v3 Authority Key Identifier: keyid:AB:2D:CC:16:9C:95:F2:B1:4D:F3:1D:D2:4A:1F:67:03:4E:A7:77:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/AB2DCC169C95F2B14DF31DD24A1F67034EA7779C.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qy3MFpyV8rFN8x3SSh9nA06nd5w.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/fe3708a0-67d5-4ac2-abc4-a332590b99af/4/38332e3133362e3138312e302f32342d3234203d3e20323136313531.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.136.181.0/24 Signature Algorithm: sha256WithRSAEncryption 63:23:6c:2e:cc:24:53:50:af:3f:25:4e:75:1f:36:e9:ca:08: 66:2a:a2:15:fd:92:44:e1:d4:bc:0f:3c:ed:98:c6:a8:78:97: c1:84:e0:5e:d6:c1:8a:4b:b9:7c:28:73:86:cf:7b:db:bd:2c: d2:cc:05:c7:e6:a6:a6:d2:fd:29:cc:54:82:a4:6e:21:52:4b: 3a:96:d5:13:7d:99:e2:0d:f9:24:6a:4a:89:ff:8a:35:dd:9a: b0:48:07:0b:1a:97:6f:b2:33:ce:92:2a:af:67:a9:64:df:77: 60:f9:c4:15:9d:55:14:a8:38:91:86:63:4f:c5:66:6e:06:22: 55:45:ae:97:c6:fc:d3:52:81:fc:d5:4b:f2:bc:33:f4:0e:0a: a4:e4:df:5e:9f:0a:41:61:cb:a8:ca:5e:8b:c5:46:57:82:94: 02:6f:ff:68:d7:f8:47:73:26:9a:ff:ac:b0:8c:4d:2b:21:46: ec:c2:ff:84:73:fd:31:a5:b6:87:8c:fe:56:bd:c3:01:88:f3: 6d:4b:c5:34:fc:7f:0c:aa:45:8d:cd:d0:8a:26:6f:53:81:5c: 08:64:a2:b8:e7:4a:77:0e:72:c0:73:1d:91:ba:1c:e5:e7:8b: 0e:07:49:db:12:12:60:31:f0:3d:41:1d:e2:e2:26:14:74:57: 57:0d:d9:df -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUBotko1Qb6QLB5Ht2bxsc74/sE+8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoYWIyZGNjMTY5Yzk1ZjJiMTRkZjMxZGQyNGExZjY3MDM0 ZWE3Nzc5YzAeFw0yNTEyMjkxNjQ2MDhaFw0yNjEyMjgxNjUxMDhaMDMxMTAvBgNV BAMTKDk3QjU4MUQ5QTc4RjZEMTM0QTE0Q0U4NUUxQjRDRTFBNjU0RTJFNEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcWrvZNG4LNwmbUlWwC61j5++S fZy8rfXWsXD3SFz0hVtkFxtKSANDhGxDkpiyW80mVreCHcU5G4341beEpHpkQigq qBPk/rt/szmgCANhS479nKUycy0AJI9aa5cappgf5ZoflTRfYgrYuW44nx9xSlVw 82NMa+UjG5QSmE6uYK1wS3mjdOIpWRuubYjGrjlH19jz8dSbluVaEDQ5B1CE+8PO 1RE+jzWNsKjHCEO0/Ds0na7FBzU0hW3D++yuCGkX2maVzfiR/HX/Jgbx2g8ITWL5 LZ3KT9ih0MnItt+5V4VDFb0WlTyRQle4l7J7k7HEqJuWI3bAPx7Om2ouqCbTAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUl7WB2aePbRNKFM6F4bTOGmVOLkowHwYDVR0j BBgwFoAUqy3MFpyV8rFN8x3SSh9nA06nd5wwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAtNjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5 OWFmLzQvQUIyRENDMTY5Qzk1RjJCMTRERjMxREQyNEExRjY3MDM0RUE3Nzc5Qy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL3F5M01GcHlWOHJGTjh4M1NTaDluQTA2 bmQ1dy5jZXIwga8GCCsGAQUFBwELBIGiMIGfMIGcBggrBgEFBQcwC4aBj3JzeW5j Oi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvZmUzNzA4YTAt NjdkNS00YWMyLWFiYzQtYTMzMjU5MGI5OWFmLzQvMzgzMzJlMzEzMzM2MmUzMTM4 MzEyZTMwMmYzMjM0MmQzMjM0MjAzZDNlMjAzMjMxMzYzMTM1MzEucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABTiLUwDQYJKoZIhvcNAQELBQADggEBAGMjbC7MJFNQrz8lTnUfNunKCGYqohX9 kkTh1LwPPO2Yxqh4l8GE4F7WwYpLuXwoc4bPe9u9LNLMBcfmpqbS/SnMVIKkbiFS SzqW1RN9meIN+SRqSon/ijXdmrBIBwsal2+yM86SKq9nqWTfd2D5xBWdVRSoOJGG Y0/FZm4GIlVFrpfG/NNSgfzVS/K8M/QOCqTk316fCkFhy6jKXovFRleClAJv/2jX +EdzJpr/rLCMTSshRuzC/4Rz/TGltoeM/la9wwGI821LxTT8fwyqRY3N0Iomb1OB XAhkorjnSncOcsBzHZG6HOXniw4HSdsSEmAx8D1BHeLiJhR0V1cN2d8= -----END CERTIFICATE-----Generated at Mon Jan 19 14:25:51 2026 by rpki-client